Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json)
Hash identifier: KI1NsBEWCLO+f+tVZwnNw5XgM26p0RD6u7J/FfXz4Vg=
Subject key identifier: BA:22:31:F2:B3:A2:66:15:44:B4:89:C8:FB:B1:A3:9E:87:DD:A7:7A
Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2
Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2
Certificate serial: 020C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
Manifest number: 0206
Signing time: Sat 29 Mar 2025 02:16:29 +0000
Manifest this update: Sat 29 Mar 2025 02:16:29 +0000
Manifest next update: Sat 05 Apr 2025 02:16:29 +0000
Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: H1esJoR2ZsxenzDGLK1nAtQwNPCXx865zy261gNxVBQ=)
2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: 4gZpKbAZ3PPZ8XY+4tRmnbJCoHSToqpiZD3Xw35DspI=)
3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: lDaMLlKkOnOEtKB4HQw14YL4MByHOHikQc7Dy/TLNpg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 524 (0x20c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FA1BE
Validity
Not Before: Mar 29 02:16:29 2025 GMT
Not After : Apr 5 02:16:29 2025 GMT
Subject: CN=67e757fd-e97c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7f:b0:f8:d6:97:d8:01:7f:2d:9a:23:d3:e9:
90:5b:80:e6:da:de:fc:39:ae:14:a6:55:60:d7:9d:
a7:57:40:e6:b9:bc:bc:f4:ad:d7:16:25:ce:59:49:
d5:d8:da:44:53:97:c7:96:fe:8b:31:13:02:a3:4b:
18:3f:4e:47:0b:ab:b0:4e:78:63:93:e4:db:d8:96:
82:bd:e5:57:8d:8b:b2:95:fc:85:7d:ed:d2:59:69:
ee:36:1c:6f:96:e2:d0:38:a1:6d:32:37:78:7d:45:
43:05:c8:74:44:e4:84:62:33:6f:9f:44:22:ae:ed:
b7:75:1a:2f:44:4a:d2:2d:ae:bc:f5:fd:8b:fb:51:
99:d7:c1:c6:90:7d:4e:a6:dd:12:1f:94:aa:3e:fd:
cb:f7:e8:a3:91:44:07:d4:4e:ee:70:22:29:69:b9:
78:2b:82:59:50:63:b5:6b:06:c0:53:d4:39:33:a4:
58:81:d4:6a:a9:a9:27:9d:36:0c:ae:cb:df:90:13:
8f:56:f2:b5:5c:56:fb:2e:c1:41:f9:48:fa:c2:39:
c7:02:b3:1f:11:9e:a2:d8:1c:85:bf:bd:57:ee:ef:
27:a2:9b:cc:d2:ec:64:27:d7:dc:b2:83:c7:0c:22:
f7:e9:0c:00:7f:77:ad:7c:33:d7:ea:75:a6:d9:e0:
e9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:22:31:F2:B3:A2:66:15:44:B4:89:C8:FB:B1:A3:9E:87:DD:A7:7A
X509v3 Authority Key Identifier:
keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:ca:c8:c3:83:ef:2f:8f:24:8a:43:f4:09:32:98:24:09:ad:
f1:d0:23:db:17:30:54:5d:30:09:8d:71:b3:eb:ef:92:9c:42:
d4:b7:ac:31:29:eb:0d:4e:a4:63:15:91:88:a6:39:71:f5:05:
9b:50:f4:9d:4e:a3:db:23:31:f8:71:c1:8a:6b:fa:a7:87:c2:
de:97:99:e8:c8:bf:90:51:1e:bb:8a:2f:e2:ab:22:05:3f:ea:
d3:05:b4:b2:f9:2e:0b:5c:c9:17:6e:e9:81:b7:a9:ff:31:80:
3a:4f:ed:88:a8:71:8a:2f:27:5b:16:ef:ee:04:ad:7e:f2:52:
89:8b:1b:a0:7c:58:63:08:59:3a:28:69:27:bf:31:78:4d:73:
f4:ed:b1:2d:97:ca:2b:b9:ca:fd:43:2b:08:d5:27:2e:72:44:
eb:58:e1:e6:1a:17:c6:a0:42:89:82:16:7d:aa:59:87:e3:7e:
5a:15:6a:0d:cf:68:f3:73:c4:6e:bb:c9:bb:3f:d0:32:ec:ae:
97:02:62:f6:48:42:63:d4:b2:12:7a:6d:c6:e0:bc:6c:fc:56:
53:e6:6a:d1:be:5a:4d:98:51:e7:55:36:cd:a9:2e:55:e2:24:
b0:2b:3b:27:ba:a5:14:25:6f:64:45:10:57:30:0e:5e:9f:59:
ed:1e:05:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:00:15 2025 by rpki-client